d856dfc8c015d1321f11197ca7361b4a64d5286c880e76e68db7d57fa5bb0732 | Triage

Submit
Reports

Overview

overview

8

Static

static

d856dfc8c0...32.dll

windows7-x64

8

d856dfc8c0...32.dll

windows10-2004-x64

8

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

d856dfc8c015d1321f11197ca7361b4a64d5286c880e76e68db7d57fa5bb0732.dll

Resource

win7-20220812-en

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral2

Sample

d856dfc8c015d1321f11197ca7361b4a64d5286c880e76e68db7d57fa5bb0732.dll

Resource

win10v2004-20220812-en

windows10-2004-x64

2 signatures

150 seconds

General

Target

d856dfc8c015d1321f11197ca7361b4a64d5286c880e76e68db7d57fa5bb0732
Size

85KB
MD5

37028555cc375a042bd25c35f4469650
SHA1

43958753b434ae8f2b3fbf22398abf3296f3785a
SHA256

d856dfc8c015d1321f11197ca7361b4a64d5286c880e76e68db7d57fa5bb0732
SHA512

c54bb1d18181cce9b5218ed2b97abfa809687354fc9fd24eb3301c98934b7af27136916191017040eaa7eb986d66bcf891e7f1ece923bbd7fb7740cfc47b3c2f
SSDEEP

1536:DX4UfATbzxKYZjCInm6Xt20jFM5F9uJ6GIq7ezhsm9:kTZX4IC5juJ6FgChsm

Score

N/A

Malware Config

Signatures

Files

d856dfc8c015d1321f11197ca7361b4a64d5286c880e76e68db7d57fa5bb0732
.dll windows x86

97fd06da2f0f3bd45ad91fd8f53923e1

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

shlwapi

StrPBrkW
UrlCreateFromPathW
StrRetToBufW
UrlCombineW

kernel32

SetUnhandledExceptionFilter
GetCurrencyFormatA
InterlockedExchange
UnhandledExceptionFilter
GetCurrentThreadId
HeapFree
GetSystemTimeAsFileTime
GetCurrentProcess
InterlockedCompareExchange
TerminateProcess
InterlockedIncrement
GetModuleHandleW
QueryPerformanceCounter
Sleep
GetModuleFileNameW
GetCurrentProcessId
GetProcessHeap
GetTickCount

ole32

CoTaskMemFree
CoAllowSetForegroundWindow
CreateBindCtx
CoInitializeEx
CoUninitialize

user32

SetForegroundWindow
GetAncestor
GetAsyncKeyState
EnumWindows
IsIconic
MonitorFromPoint
ShowWindow

msvcrt

malloc
free

Exports

Exports

KaBeeginHandllePos
KaChangeDeesskttop
KaEnndProcTexxtt
KaGettWinddowPos
KaSeeetWWindow
KaSetWindowwww

Sections

.text
Size: 40KB - Virtual size: 39KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 39KB - Virtual size: 39KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy